fiPR-16-S00? 14:05 From:BSTZ 



3037406962 



To:USPTO 



P. 



CENTRAL PAX CENTER 
In the claims: 4f%r% 

APR t 6 2007 

For the Exammer*s convenience, all pending claims are presented below with 
changes shown. Please cancel claims 3» 10 and 20 without prejudice. 



1 . (Currently Amended) A method comprising: 

initializing a device driver unon startup of a com puter system 
forwarding a j&rst list of hardware registers from the device driver to a first 
security module: 

verifying, at the first security module, a digital signa ture of the device driven 
storing ft the first list of hardware registers; 
receiving video data at an application program; 
receiving a second list of hardware registers fiT>m a device driver^ 
determining whether the first list of hardware registers matches tiie second list of 
hardware registers; and 

if so, streaming the video data to a video decoder. 

2. (QriginaJ) The method of claim 1 further comprising precluding the 
streaming of the video data to the video decoder if the first list of hardware registers does 
not match the second list of hardware registers. 

3. (Cancelled) 

4. (Currently Amended) The method of claim i ^ finther comprising encrypting the 
first list of hardware registers prior to storing the first list of hardware registers. 

5. (Original) TThe method of claim 1 further comprising: 
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the application program cailing an interface upon receiving the video data; 
the interface requesting the second list of hardware registers from the device 
driver, and 

mapping the second Ust of hardware registers to a virtual resource map that is 
accessible by the application^ 

6. (Original) The method of claim 5 fhrther comprising: 

the interface calling a second security module to verify the second list of 
hardware registers; and 

the second security module calling the first security module in order to vetify the 
virtual resource map. 

7. (Original) The method of claim 6 further comprising verijfying, at the second 
security module, a digital signature of the interface prior to calling the first security 
module. 

8. (Original) The method of claim 7 wherein the second security module calls 
the first security module via a secure link. 

9. (Currently Amended) A computer system comprising: 
a player application that receives data content; 

a decoder that stores and decodes the data content received at the player, the 
decoder including hardware registers to store the data content; 

a driver, coupled to the decoder, that allocates the hardware registers within for 
access by the player application; and 
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a fiist security module, coupled to the driver, that secures a first list of resources 
corresponding to the hardware registers to prevent unauthorized access of the data 
content within the hardware registers^ and verifies the intemtv of the driver via di'&ital 
signatures prior to receiving the first Ust of resources . 

10. (Cancelled) 

1 1 . (Currently Amended) The computer system of claim 9 further comprising an 
interface, coupled to the player application, die driver and the decoder, that decrypts ^ 
eeMef^ the data content prior to the data content being stored in the hardware registers. 

12; (Original) The computer system of claim 1 1 wherein the driver verifies the 
integrity of the interface via digital signatures and public/private key technologies. 

13. (Original) The computer system of claim 1 1 further comprising a second 
security module coupled to die interface and the first security module. 

14. (Original) The computer system of claim 1 3 wherein the second security 
module receives a second list of resources from the interface whenever the player 
application is to release the data content from the hardware registers. 

15. (Original) The computer system of claim 14 wherein the second security 
module retrieves the first fist of resources from the first security module and compares 
the first h st of resources to the second list of resources. 

1 6. (Original) The computer system of claim 1 5 wherein the data content is 
released from the hardware registers if the second list of resources matches the first Ust of 
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resources. 

17. (Original) The computer system of claim 13 wherein the connection between 
the first security module and the second security modiUe is secured by a random number 
secret key system. 

18. (Currently Amended) An article of manufacture including one or more computer 
readable storage media that embody a program of instructions, wherein the program of 
instructiODSy when executed by a processing unit, causes the processing unit to: 

initialize a device driver upon startup of a computer system 
forward a first list of hardware registers fr om the device driver to a first securitv 
module: 

verify, at the first securitv module, a digital signature of the device driv^ 
store a the first list of hardware registers; 
receive video data at an application program; 
receive a second list of hardware registers from a device driver; 
determine whether the first list of hardware registers matches the second list of 
hardware registers; and 

if so, stream the video data to a video decoder. 

1 9. (Original) The article of manufacture of claim 1 8 when executed by a 
processing unit, further causes the processing unit to preclude the streaming of the video 
data to the video decoder if the first list of hardware registers does not match the second 
list of hardware registers. 

20. (Cancelled) 
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21. (Cuixently Amended) The article of manufacture of claim 18 3d when executed 
by a processing unit, further causes the processing unit to encrypt the first list of 
hardware registers prior to storing the first list of hardware registers. 

22. (Original) The article of manufacture of claim 18 when executed by a 
processing unit^ further causes: 

the application program to call an interface upon receiving the video data; 
the interface to request the second list of hardware registers ftom the device 
driven and 

mappix>g the second list of hardware registers to a virtual resource map that is 
accessible by the application. 

23. (Original) The article of manufacture of claim 22 when executed by a 
processing uxxit, further causes: 

the interface to call a second security module to verify the second list of hardware 
registers; and 

the second security module to call the first security module in order to verify the 
virtual resource map. 

24. (Original) The article of manujfacture of claim 23 when executed by a 
processing unit, fiuther causes verifying, at the second security module, a digital 
signature of the interface prior to calling the first security module. 
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